snmpd interface name length bug
I found a string handling bug in snmpd when parsing v6 interfaces on linux.
While reading /proc/net/if_inet6 net-snmp uses:
rc = sscanf(line, "%39s %02x %02x %02x %02x %8s\n",
addr, &if_index, &pfx_len, &scope, &flags, if_name);
to read the input, but on linux interfaces can currently be up to 16 characters in length.
The result of which was errors like:
Feb 27 22:45:09 rosa snmpd[6082]: ioctl 35123 returned -1
many times in logs.
I have reported this bug towards upstream via the debian bug tracking system at: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=468260
Patch is at: http://hachi.kuiki.net/bug_reports/snmpd.patch
Comments
Your destiny lies before you, choose wisely.art mentalism cassidy original signed copy xrytl[link=http://weblog.xanga.com/RanLouQL1974/678440074/bash-quote-warmoose-think-about-how-stupid-the-average.html]magic books wivlk[/link][url=http://weblog.xanga.com/RanLouQL1974/678440074/bash-quote-warmoose-think-about-how-stupid-the-average.html]magic books wivlk[/url]
Posted by: ElizabethHill | October 15, 2008 8:31 AM